Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d5c042-5b4d-4b10-bc76-42eaabbfbfd2/1/4N2I6o0MAalOpnp3VPFtfzMEjMM.roa
File: 4N2I6o0MAalOpnp3VPFtfzMEjMM.roa (raw, json)
Hash identifier: Kshb4Cb3f9FZnRugC/WiipLnsO3QSgmHkr5SIXH0XYY=
Subject key identifier: E0:DD:88:EA:8D:0C:01:A9:4E:A6:7A:77:54:F1:6D:7F:33:04:8C:C3
Certificate issuer: /CN=16f9f928b0ac67731991f374b8e194eb6542ac24
Certificate serial: 018595B985F43F3032D44ADA552B7072AB15
Authority key identifier: 16:F9:F9:28:B0:AC:67:73:19:91:F3:74:B8:E1:94:EB:65:42:AC:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fvn5KLCsZ3MZkfN0uOGU62VCrCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d5c042-5b4d-4b10-bc76-42eaabbfbfd2/1/4N2I6o0MAalOpnp3VPFtfzMEjMM.roa
Signing time: Mon 09 Jan 2023 08:50:41 +0000
ROA not before: Mon 09 Jan 2023 08:50:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209053
IP address blocks: 45.8.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:b9:85:f4:3f:30:32:d4:4a:da:55:2b:70:72:ab:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16f9f928b0ac67731991f374b8e194eb6542ac24
Validity
Not Before: Jan 9 08:50:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0dd88ea8d0c01a94ea67a7754f16d7f33048cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7d:35:f9:a4:bc:a1:c1:52:c9:b9:c7:d3:91:
dc:b6:4e:60:50:7b:1f:91:05:2e:71:d5:72:da:aa:
c6:05:59:0d:6a:23:22:36:af:a7:e8:bc:25:fc:1c:
64:6d:b8:72:8b:51:12:fe:2f:a7:de:d2:97:ed:cf:
2c:e2:1b:12:2c:08:80:54:05:aa:03:0e:eb:d3:2a:
60:d1:2b:e0:3d:72:0a:54:d2:36:26:61:72:c2:1e:
b0:eb:01:49:79:61:52:94:f8:2a:f6:2d:43:a6:52:
76:0f:01:95:05:d1:05:e3:5c:a9:35:cc:01:31:45:
4f:b2:fa:8b:69:69:c8:74:1a:fa:d4:f7:5b:fc:6d:
e9:c7:b2:4a:3e:c1:32:61:9b:41:b5:d2:4b:86:5a:
6a:58:ae:94:70:e5:7a:00:7d:e6:de:68:24:b6:60:
51:4c:5c:44:ee:2d:6b:23:d7:ec:e4:87:e5:c8:ef:
88:e0:5c:69:91:68:01:3b:54:d9:d8:f3:a6:90:6b:
4d:01:f0:24:6a:3e:54:ea:db:71:f5:e6:46:6d:c9:
73:ea:06:a5:51:da:00:9a:99:f1:b1:0f:68:8e:56:
02:41:d3:89:12:72:df:0e:78:50:bb:33:fa:e1:64:
91:68:96:19:ba:eb:ea:9a:57:ef:c3:20:34:e4:a2:
80:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:DD:88:EA:8D:0C:01:A9:4E:A6:7A:77:54:F1:6D:7F:33:04:8C:C3
X509v3 Authority Key Identifier:
keyid:16:F9:F9:28:B0:AC:67:73:19:91:F3:74:B8:E1:94:EB:65:42:AC:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fvn5KLCsZ3MZkfN0uOGU62VCrCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d5c042-5b4d-4b10-bc76-42eaabbfbfd2/1/4N2I6o0MAalOpnp3VPFtfzMEjMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d5c042-5b4d-4b10-bc76-42eaabbfbfd2/1/Fvn5KLCsZ3MZkfN0uOGU62VCrCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.232.0/24
Signature Algorithm: sha256WithRSAEncryption
96:5e:70:00:56:c4:e8:39:02:ca:9c:f1:eb:39:a8:30:db:6b:
ea:a8:71:cb:26:4f:09:07:22:87:6c:3d:38:2d:d1:b9:61:53:
d9:ff:de:de:dc:ff:29:42:11:57:a5:56:1e:9b:44:34:dd:e3:
e9:09:96:06:27:3e:b2:f6:8e:8e:5a:38:0c:19:b8:99:f2:98:
44:08:65:49:43:5b:c4:92:27:e5:ea:7a:3b:17:c6:6f:b1:ec:
35:d9:22:6e:d4:3f:f4:92:21:6e:72:c4:63:47:6f:6b:c0:c3:
58:8f:69:dd:3f:e8:94:14:05:20:a0:d1:1c:43:10:8c:77:78:
2e:9a:4b:a3:7f:b2:55:f8:e4:da:f3:4c:9c:e0:e9:45:04:f7:
58:40:15:d4:30:ce:7c:06:e7:05:f5:6a:19:7c:92:54:bf:7c:
7b:e8:ca:9e:96:44:60:e3:0b:1d:47:14:cd:39:9e:cc:e9:3f:
17:3d:65:b3:6d:ab:f7:f7:aa:d0:97:aa:7a:74:b1:2f:66:a7:
a7:8b:a9:22:f1:c2:f9:38:f1:ca:5e:eb:b6:42:34:e7:36:03:
43:c0:2d:88:cc:3f:69:7e:7a:b2:25:12:b8:11:89:0e:27:44:
49:26:3a:92:3b:3a:65:ee:3a:ab:c3:b7:e9:0e:0c:51:34:66:
e3:5f:56:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:57 2024 by rpki-client on console-fra.rpki-client.org